2004-05-22: cvs and cadaver security fixescadaver (0.18.0-1woody3) stable-security; urgency=high
* Non-maintainer upload by the Security Team
* Applied part of an upstream patch by Joe Orton to
correct the weekdays buffer to properly fix a potential stack overflow
via revision date in REPORT query [src/ne_dates.c, CAN-2004-0398]
-- Martin Schulze Tue, 4 May 2004 15:59:44 +0200
cadaver (0.18.0-1woody2) stable-security; urgency=high
* Non-maintainer upload by the Security Team
* Applied patch by Stefan Esser to fix a
potential stack overflow via revision date in REPORT query
[libneon/ne_dates.c, CAN-2004-0398]
-- Martin Schulze Mon, 3 May 2004 09:39:07 +0200
cvs (1.11.1p1debian-9woody4) stable-security; urgency=high
* Non-maintainer upload by the Security Team
* Updated most recent fix against CAN-2004-0396 with bits from upstream
by Derek Robert Price to fix interoperability
problems with WinCVS 1.3 [debian/patches/66_CAN-2004-0396]
-- Martin Schulze Mon, 17 May 2004 20:42:31 +0200
cvs (1.11.1p1debian-9woody3) stable-security; urgency=high
* Non-maintainer upload by the Security Team
* Applied patch from Stefan Esser to fix a heap
overflow in the CVS pserver code [debian/patches/66_CAN-2004-0396,
CAN-2004-0396]
-- Martin Schulze Mon, 3 May 2004 09:23:08 +0200
|